This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft File: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft (raw, json) Hash identifier: lMlY9bNJTLZLGHeEWZfz4nPuxkPykPoEq5oSoTRgoLg= Subject key identifier: 13:65:90:2C:5A:51:5E:85:C1:54:A4:B9:42:EB:05:05:4E:04:3E:BF Authority key identifier: 8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24 Certificate issuer: /CN=8e79cef458de50392e3c02b69182f34c60148d24 Certificate serial: 019B22509ECAFA6774A5ECB083226F93118C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft Manifest number: 014A Signing time: Mon 15 Dec 2025 14:01:07 +0000 Manifest this update: Mon 15 Dec 2025 14:01:07 +0000 Manifest next update: Tue 16 Dec 2025 14:01:07 +0000 Files and hashes: 1: FjU0H7vPdjT4WlcuRh8u9jonq80.roa (hash: FVDMMIfr/P3OKDJ02oDTFPsyvxmI1cgf33doeyF5iQw=) 2: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl (hash: jHc+JkbNyu09mouIWvLz5oLPuN7GN0H5HuU+kJCLFu4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 14:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:50:9e:ca:fa:67:74:a5:ec:b0:83:22:6f:93:11:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e79cef458de50392e3c02b69182f34c60148d24 Validity Not Before: Dec 15 14:01:07 2025 GMT Not After : Dec 16 14:01:07 2025 GMT Subject: CN=1365902c5a515e85c154a4b942eb05054e043ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ff:f5:14:69:ec:42:d8:66:61:58:16:1d:e1: 7c:3b:86:fa:ac:73:29:1e:d7:84:c3:9f:1c:98:5e: 71:87:72:62:5d:22:d1:f2:1e:97:36:ff:72:18:5a: 41:28:d3:fe:f5:f7:3d:cc:c6:65:c1:c8:20:6d:6b: 0f:b4:11:b9:f1:7b:57:90:e6:b3:8b:ec:5a:4f:60: ab:b9:63:26:55:14:f6:fd:0d:b8:d6:e2:a7:f0:3c: 32:17:af:15:a2:b9:83:ef:c7:fd:bc:e8:17:c3:2b: 41:fc:c3:12:71:9c:ea:c0:f3:eb:f7:34:ff:95:ae: b6:90:51:5b:f2:90:cf:5d:b9:e8:67:01:8e:67:28: 28:76:76:34:68:06:ce:cd:f3:f6:9a:25:f3:73:53: f0:ab:84:2f:c2:76:50:35:80:0c:4b:b5:23:21:e5: bb:85:31:96:eb:02:9e:82:8d:30:72:7c:9d:2d:68: 12:0d:5b:ab:fe:14:55:82:56:c1:51:32:bc:3b:eb: c9:6a:cd:d9:c7:90:08:cc:71:3e:61:48:db:43:3f: 8f:42:fb:93:8c:d0:5e:95:c0:3c:63:24:bf:63:bd: 0f:a8:ac:de:f0:d3:75:d3:31:9d:dd:4b:a9:42:51: 44:0e:14:89:18:b5:df:82:f0:1e:74:0a:de:6f:04: 9e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:65:90:2C:5A:51:5E:85:C1:54:A4:B9:42:EB:05:05:4E:04:3E:BF X509v3 Authority Key Identifier: keyid:8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:c8:46:0e:7b:63:3c:01:aa:41:75:86:ef:97:72:17:7e:a8: d3:af:3b:f3:97:e9:43:5f:3c:21:83:94:cc:3e:07:40:26:58: a6:b8:17:3d:36:2a:bd:98:e7:71:9a:3b:e4:95:c0:ad:8e:fa: c5:88:d2:9a:4f:b2:2c:7b:8a:84:c9:5d:47:68:2b:d0:88:af: 00:78:14:09:e0:1d:ad:c3:ad:84:10:f8:dd:e1:b7:dd:bc:40: 98:68:2e:19:79:49:ed:a3:c3:e9:a0:35:7c:f9:6d:a9:88:1b: df:c0:1e:94:e3:b2:a9:ad:67:3a:93:c5:e4:73:31:3e:5d:81: c2:14:ab:73:dc:0d:4c:96:5b:86:f3:b2:e7:45:32:1f:34:a7: 57:c6:fd:9f:43:f8:6f:e2:c1:5b:1c:84:bf:db:7c:de:4d:1d: 26:6b:35:8d:c5:ca:6b:77:9c:bf:b6:e9:9a:94:b9:e3:0a:e9: 87:1e:33:6a:01:83:12:c3:73:92:6e:c3:d6:1d:7b:e6:33:c6: be:c8:48:13:65:b5:68:ce:87:79:6f:67:e0:94:d4:10:5e:b5: eb:81:40:2b:93:63:e8:27:21:34:68:8a:7a:16:02:be:b9:d7: c1:be:ab:1a:8a:d4:11:27:af:f1:11:5e:74:3a:f3:cd:c0:14: 08:80:c2:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsiUJ7K+md0peywgyJvkxGMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlNzljZWY0NThkZTUwMzkyZTNjMDJiNjkxODJmMzRjNjAx NDhkMjQwHhcNMjUxMjE1MTQwMTA3WhcNMjUxMjE2MTQwMTA3WjAzMTEwLwYDVQQD EygxMzY1OTAyYzVhNTE1ZTg1YzE1NGE0Yjk0MmViMDUwNTRlMDQzZWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnP/1FGnsQthmYVgWHeF8O4b6rHMp HteEw58cmF5xh3JiXSLR8h6XNv9yGFpBKNP+9fc9zMZlwcggbWsPtBG58XtXkOaz i+xaT2CruWMmVRT2/Q241uKn8DwyF68VormD78f9vOgXwytB/MMScZzqwPPr9zT/ la62kFFb8pDPXbnoZwGOZygodnY0aAbOzfP2miXzc1Pwq4QvwnZQNYAMS7UjIeW7 hTGW6wKego0wcnydLWgSDVur/hRVglbBUTK8O+vJas3Zx5AIzHE+YUjbQz+PQvuT jNBelcA8YyS/Y70PqKze8NN10zGd3UupQlFEDhSJGLXfgvAedArebwSebQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBNlkCxaUV6FwVSkuULrBQVOBD6/MB8GA1UdIwQY MBaAFI55zvRY3lA5LjwCtpGC80xgFI0kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvam5uTzlGamVVRGt1UEFLMmtZTHpUR0FValNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zMzRkNTQtNDk0My00ZGViLTg5MWMt Y2MxMjA4MTQ4NzI5LzEvam5uTzlGamVVRGt1UEFLMmtZTHpUR0FValNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8zMzRkNTQtNDk0My00ZGViLTg5MWMtY2MxMjA4MTQ4NzI5 LzEvam5uTzlGamVVRGt1UEFLMmtZTHpUR0FValNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiMhGDntj PAGqQXWG75dyF36o068785fpQ188IYOUzD4HQCZYprgXPTYqvZjncZo75JXArY76 xYjSmk+yLHuKhMldR2gr0IivAHgUCeAdrcOthBD43eG33bxAmGguGXlJ7aPD6aA1 fPltqYgb38AelOOyqa1nOpPF5HMxPl2BwhSrc9wNTJZbhvOy50UyHzSnV8b9n0P4 b+LBWxyEv9t83k0dJms1jcXKa3ecv7bpmpS54wrphx4zagGDEsNzkm7D1h175jPG vshIE2W1aM6HeW9n4JTUEF6164FAK5Nj6CchNGiKehYCvrnXwb6rGorUESev8RFe dDrzzcAUCIDC2Q== -----END CERTIFICATE-----Generated at Mon Dec 15 20:08:19 2025 by rpki-client